Microsoft Defender CVE-2026-41091 & CVE-2026-45498
Microsoft has confirmed active exploitation of two security vulnerabilities in its security ecosystem, identified as CVE-2026-41091 and CVE-2026-45498, both evaluated under the CVSS scoring system.…
Category: DarkReading
TAKE IT DOWN Act Drives FTC Push Against Explicit AI Content
The Federal Trade Commission (FTC) has intensified enforcement of the TAKE IT DOWN Act, issuing warning letters to multiple online platforms and AI-powered “nudify” services…
End-to-End Encryption Expands Across Discord Platform
Discord has officially rolled out end-to-end encryption for all voice and video calls across its platform, marking a major shift in how the company approaches…
CVE-2026–5140 Flaw Grants Root Access On Pardus Linux
A critical local privilege escalation vulnerability chain tracked as CVE-2026–5140 has exposed serious security weaknesses in Pardus Linux. Researchers revealed that the flaws allow any…
Chanhassen Dinner Theatres Cyberattack Disrupts Shows
The fallout from the Chanhassen Dinner Theatres cyberattack has forced the popular Minnesota venue to cancel additional performances of “Guys and Dolls” as management deals with both…
Private ISAC Launched By Telecom Sector Against Cyberattacks
The U.S. telecom sector is strengthening its cybersecurity coordination efforts with the launch of a new private ISAC designed to help major communications companies respond…
7-Eleven Data Breach Exposes Franchisee Information
7-Eleven has confirmed that its internal systems were breached in April 2026, exposing personal information linked to franchisee application records. The disclosure of 7-Eleven data…
NGINX Rift: CVE-2026-42945 Exploited In Attacks
Cybersecurity researchers are warning that attackers have already started exploiting a newly disclosed NGINX vulnerability, tracked as CVE-2026-42945, just days after technical details and proof-of-concept code became…
Operation Ramz Targets MENA Cybercrime Networks
A large-scale cybercrime crackdown led by INTERPOL has resulted in 201 arrests and the identification of 3,867 victims across the Middle East and North Africa…
Agentic AI Expands Enterprise Attack Surface, Warns NCSC
The UK’s National Cyber Security Centre (NCSC) has warned organizations to take a measured approach toward adopting agentic AI, highlighting the growing cyber and operational…
Fragnesia Linux Kernel Flaw Enables Root Privilege Gain
Security researchers have disclosed a newly identified local privilege escalation vulnerability in the Linux Kernel, dubbed “Fragnesia,” which belongs to the broader Dirty Frag family of flaws.…
TanStack Npm Supply Chain Attack Prompts OpenAI Updates
OpenAI has disclosed details of its response to the recent TanStack npm supply chain attack, confirming that two employee devices were affected during the broader…